This policy explains how Literasi Hukum Indonesia collects, uses, stores, and protects your personal data.

We respect your privacy. We only collect data that is relevant to providing services (e.g. accounts, content publication, subscriptions, tryouts) and maintaining system security.

1) Data we collect

  • Account data: name, email address, password (stored in hashed form), profile picture (optional), and account settings.
  • Author profile data: biography (if you fill it out), social media links (Instagram/Facebook/LinkedIn/X), and information you display on the author page.
  • Content data: manuscripts you submit (opinions/news/legal material/public space), revisions, review status, and publication metadata.
  • Communication data: messages via contact forms, correction reports, or service-related communications.
  • Transaction data: if you purchase digital products (e.g. tryout/premium), we store transaction records and payment status (card details/accounts are generally processed by the payment provider, not stored on our servers).
  • Technical data: IP address, device type, browser, activity logs, cookies/sessions, and security data for abuse prevention.

2) How we use data

  • Creating and managing accounts, authentication, and account recovery.
  • Providing service features: writing submissions, editorial reviews, publications, comments/reactions (if available), and basic personalization.
  • Processing transactions, activating premium/tryout access, and displaying purchase history.
  • Maintaining system security: detecting spam, brute-force, fraud, and misuse.
  • Contacting you for service purposes (e.g., writing status, policy updates, or important notifications).
  • Internal analytics to improve performance and quality of user experience.

3) Processing basis

We process your data based on one or more of the following bases (depending on the context of service use):

  • Service/contract execution (e.g., account creation, feature access, tryout/premium purchase).
  • Compliance with legal obligations (e.g., transaction recording, handling requests from legitimate authorities).
  • Legitimate interest (e.g., misuse prevention, system security, service quality improvement).
  • Consent (e.g., specific communication preferences, or non-essential cookies when implemented).

4) Cookies and similar technologies

We use cookies/sessions to make the site work (e.g., login), store preferences, and assist with performance analytics. In addition to essential cookies, certain third parties (e.g., analytics or advertising services like Google AdSense) may use cookies/similar technologies according to their policies. You can set your browser to reject cookies, but some features may not work properly.

5) Sharing data with third parties

We do not sell your personal data. However, we may share data on a limited basis with:

  • Service providers who assist with operations (hosting, email, payments, analytics) only for service purposes and in accordance with agreements.
  • Legal obligations: if requested by the competent authority in accordance with applicable legal procedures.
  • Security protection: to prevent fraud, cyber attacks, or violations of the terms of service.

6) Processing locations and cross-border transfers

Modern internet infrastructure may involve third-party service providers (e.g. CDNs, attack protection, email, or payments) whose servers are located in various locations. Therefore, some technical data (such as IP addresses, security logs, or caches) may be processed through the service provider's global network. We choose partners who have reasonable security standards and process data as necessary for the provision of services.

7) Data retention and deletion

  • Account data is stored for as long as your account is active or as long as it is needed for the provision of services.
  • Security logs may be stored for a certain period of time for security audits.
  • Transaction data is stored as required for recording and administrative compliance.

You can request account deletion through official contacts. Publication records (e.g. published articles) may be retained for archival and publication integrity purposes, with reasonable adjustments.

8) Data security

We implement reasonable technical and organizational security measures, including access controls, password hashing, security logging, and admin access restrictions. However, no system is 100% secure. In the event of a material security incident, we will take mitigation and notification steps as needed.

9) Your rights

You can request:

  • Access to and copies of certain data we hold about you.
  • Correction of inaccurate data.
  • Deletion of certain data (taking into account legal/archival obligations).
  • Withdrawal of consent for consent-based processing (if applicable).

10) Children's privacy

This service is not intended for children without parental/guardian consent. If you believe that a child's data is stored without a legitimate basis, please contact us.

11) Policy changes

We may update this privacy policy from time to time. The latest version will be displayed on this page.

12) Contact

Questions regarding the privacy policy can be sent via the page Contact or email admin@literasihukum.com.